CVE-2014-0244 samba: nmbd denial of service

CVE ID

CVE-2014-0244

DESCRIPTION

A denial of service flaw was found in the way the sys_recvfile() function of nmbd, the NetBIOS message block daemon, processed non-blocking sockets. An attacker could send a specially crafted packet that, when processed, would cause nmbd to enter an infinite loop and consume an excessive amount of CPU time.

RESOLUTION

  • CentOS6 Unitrends' appliances (physical and/or virtual), fixed in Unitrends software release-10.3.8-4. Please upgrade to latest release.
  • CnetOS7 Unitrends' appliances (physical and/or virtual) were patched for this CVE from its first software release version.

LINK TO ADVISORIES

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us